Connection is not secure in browser with orange padlock

Connection is not Secure error in SSL secured websites

Connection is not secure in browser with orange padlock

Many time son visiting a webpage or even building your website, you may the padlock next to htps:// with an orange triangle

What it essentially means is that some of the content from the whole website is on http rather then https. This primarily happens with non text content such as images etc which you may have uploaded while building the website and did not have an SSL certificate. Essentially what you have is mixed content

Why do browsers say my site isn't secure?

Even though you have a certificate on your site and you’re serving pages with HTTPS, web browsers might still say that your site (or certain pages on it) aren’t secure.

A single web page usually consists of dozens (or even hundreds) of separate files (called assets). These include the basic HTML page itself, but also all the images, audio, video, CSS files, JavaScript files, etc. that are used. If any of those assets isn’t being served over HTTPS, browsers will change how they use that asset. Having any HTTP assets on an HTTPS page is called “mixed content”.

 

A single web page usually consists of dozens (or even hundreds) of separate files (called assets). These include the basic HTML page itself, but also all the images, audio, video, CSS files, JavaScript files, etc. that are used. If any of those assets isn’t being served over HTTPS, browsers will change how they use that asset. Having any HTTP assets on an HTTPS page is called “mixed content”.

There are two types of mixed content:

  • Passive mixed content includes images, audio files, video, etc. that could be tampered with over HTTP, but wouldn’t affect the functionality of the underlying page. Browsers generally allow passive mixed content, but they mark the entire page hosting that content as insecure and don’t display a padlock in the address bar.

  • Active mixed content includes things like scripts, frames, etc. that could be tampered with over HTTP and would affect the functionality of the page, potentially allowing a wide range of malicious behaviors. Browsers generally block active mixed content, which can lead to parts of the page not working correctly.

 

To identify the contet and fix the issue, I woul recoomned you to try simple tool called https://www.missingpadlock.com/

What this simply does is to crawl your site for insecure pages /content – so you can fix them and get that padlock icon on every page as desired The steps to use it our very simple. Enter your website name in box as seen below o the webpage
Connection is not secure in browser with orange padlock
its OK if you do not put https in URL. The crawl may take few minutes before coming up with the result. Once done, you would see result in following format
Connection is not secure in browser
click on the respective tab to find out the issue with respective content.

The most easiest way to fix the content when you get Connection is not Secure in your browser due to mixed content would be to simply

Download it from your website. Delete it
and then re-upload it

Source Credits : www.missingpadlock.com/

PS : if you are looking how to make http to https redirection, check out this blog

Leave a Comment

Your email address will not be published. Required fields are marked *